SEC Takes Seriously Both Internal Control Weakness Disclosure and Remediation

PublicationsJanuary 30, 2019

On January 29, 2019, the SEC announced settled enforcement actions against four companies for failures to maintain internal control over financial reporting (“ICFR”) as required by Section 13(b)(2)(B) of the Securities Exchange Act and Rule 13a-15 over extended periods even though in most cases material weaknesses in their ICFR were disclosed.[1] These companies took seven to ten years to remediate their material weaknesses, even after being contacted by the SEC staff, with one still in the process of remediating its material weaknesses.

“Adequate internal controls are the first line of defense in detecting and preventing material errors or fraud in financial reporting. When internal control deficiencies are left unaddressed, financial reporting quality can suffer.”

Associate Director of the SEC’s Division of Enforcement, Melissa Hodgman, added that disclosure alone is not enough, stating:

“Companies cannot hide behind disclosures as a way to meet their ICFR obligations. Disclosure of material weaknesses is not enough without meaningful remediation. We are committed to holding corporations accountable for failing to timely remediate material weaknesses.”

Companies subject to the ICFR requirements should take seriously their internal control over financial reporting and the need to disclose any material weaknesses. In addition, they should act promptly to remediate any material weakness. We do not, however, see this SEC announcement as a harbinger of an aggressive enforcement campaign in the absence of a sustained failure to disclose or remediate material ICFR weaknesses.

Disclaimer

Please understand that your communications with Locke Lord LLP through this website do not constitute or create an attorney-client relationship with Locke Lord LLP. Any information you send to Locke Lord LLP through this website is on a non-confidential and non-privileged basis. Therefore, do not send or include any information in your email that you consider to be confidential or privileged.